|
266431
|
6.1 |
MEDIUM
Local
|
citrix
|
ios_receiver
|
Citrix iOS Receiver before 7.0 allows attackers to cause TLS certificates to be incorrectly validated via unspecified vectors.
|
CWE-310
CWE-20
Cryptographic Issues
Improper Input Validation
|
CVE-2016-5433
|
2024-11-21 11:54 |
2016-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266432
|
8.2 |
HIGH
Network
|
openstack
|
neutron
|
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of serv…
|
CWE-254
7PK - Security Features
|
CVE-2016-5363
|
2024-11-21 11:54 |
2016-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266433
|
8.2 |
HIGH
Network
|
openstack
|
neutron
|
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of ser…
|
CWE-254
7PK - Security Features
|
CVE-2016-5362
|
2024-11-21 11:54 |
2016-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266434
|
7.5 |
HIGH
Network
|
canonical
debian
libexpat_project
google
|
ubuntu_linux
debian_linux
libexpat
android
|
The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted identifiers in an …
|
CWE-399
Resource Management Errors
|
CVE-2016-5300
|
2024-11-21 11:54 |
2016-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266435
|
7.5 |
HIGH
Network
|
libreswan
|
libreswan
|
programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial-responder states, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed UDP packet. N…
|
CWE-20
Improper Input Validation
|
CVE-2016-5361
|
2024-11-21 11:54 |
2016-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266436
|
7.5 |
HIGH
Network
|
huawei
|
honor_ws851_firmware
|
Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to obtain sensitive information via unspecified vectors, aka HWPSIRT-2016-05053.
|
CWE-200
Information Exposure
|
CVE-2016-5367
|
2024-11-21 11:54 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266437
|
7.5 |
HIGH
Network
|
huawei
|
honor_ws851_firmware
|
Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to modify configuration data via vectors related to a "file injection vulnerability," aka HWPSIRT-2016-05052.
|
CWE-284
Improper Access Control
|
CVE-2016-5366
|
2024-11-21 11:54 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266438
|
9.8 |
CRITICAL
Network
|
huawei
|
honor_ws851_firmware
|
Stack-based buffer overflow in Huawei Honor WS851 routers with software 1.1.21.1 and earlier allows remote attackers to execute arbitrary commands with root privileges via unspecified vectors, aka HW…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5365
|
2024-11-21 11:54 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266439
|
7.8 |
HIGH
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
The (1) esp_reg_read and (2) esp_reg_write functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service (QEMU process crash) or execute arbitrary code on the QE…
|
NVD-CWE-noinfo
|
CVE-2016-5338
|
2024-11-21 11:54 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266440
|
5.5 |
MEDIUM
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
The megasas_ctrl_get_info function in hw/scsi/megasas.c in QEMU allows local guest OS administrators to obtain sensitive host memory information via vectors related to reading device control informat…
|
NVD-CWE-noinfo
|
CVE-2016-5337
|
2024-11-21 11:54 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
